Topic: Site's Security Grade: A- (Read 2442 times)
A? good joke
How come?
IMO there'd be a much higher chance of it causing problems than preventing an attack.
Try to think of an attack that the forum's current HSTS setup wouldn't protect against.
How would it cause a problem? If you don't have the ability to operate using https you simply shouldn't be operating (this goes for any site which needs to secure communication between server and client). If something results in you losing your TLS cert for a period of time it would be better to not operate the site until it is restored. If anything the only useful value for HSTS would be infinite (i.e. NEVER UNTIL THE END OF TIME CONNECT TO THIS DOMAIN INSECURELY) but since that is not an option a very long HSTS value is used as a proxy.
How come?
IMO there'd be a much higher chance of it causing problems than preventing an attack.
Try to think of an attack that the forum's current HSTS setup wouldn't protect against.
So how about implementing HSTS?
It is implemented, just not long-term.
So how about implementing HSTS?
It is implemented, just not long-term.
So how about implementing HSTS?
It is implemented, just not long-term.
So how about implementing HSTS?
I forget what the problem was specifically and there's no way to look back either.
It used to be an F. It's not perfect, but it's been improved a great deal.
Why was it an F? What could possibly have been done?
Now it is okay, but an A+ is always welcome.
It used to be an F. It's not perfect, but it's been improved a great deal.
Funny thing. It's not fixed at all.
good to see its fixed..
LOL.
Excellent. How much more do we have to wait until it has been updated/upgraded? This leaves so much room for a potential second hack.
Looks like it's been fixed.Very nice.
Excellent. How much more do we have to wait until it has been updated/upgraded? This leaves so much room for a potential second hack.
Looks like it's been fixed.
Excellent. How much more do we have to wait until it has been updated/upgraded? This leaves so much room for a potential second hack.
Jump to: